Page MenuHomePhabricator
Create Task
Maniphest T268636

Remove 'kraken' user
Closed, ResolvedPublic
Actions

Description

While working on a different task I found this user present on s4:

GRANT USAGE ON *.* TO `kraken`@`10.64.%` IDENTIFIED BY PASSWORD '*x'
GRANT SELECT ON `%wik%`.* TO `kraken`@`10.64.%`

It is only present on s4.
I don't know where it comes from, I haven't found it on code, gerrit or phab.
However it is on the private repo under modules/passwords/manifests/init.pp as sqoop_mysql_user

That user has never had an active connection on s4.

./section s4 | while read host port; do echo "$host:$port"; mysql.py -h$host:$port -e "select * from sys.user_summary where user like 'kraken'";done
labsdb1012.eqiad.wmnet:3306
labsdb1011.eqiad.wmnet:3306
labsdb1010.eqiad.wmnet:3306
labsdb1009.eqiad.wmnet:3306
dbstore1004.eqiad.wmnet:3314
db2140.codfw.wmnet:3306
db2139.codfw.wmnet:3314
db2138.codfw.wmnet:3314
db2137.codfw.wmnet:3314
ERROR 1146 (42S02) at line 1: Table 'sys.user_summary' doesn't exist
db2136.codfw.wmnet:3306
db2119.codfw.wmnet:3306
db2110.codfw.wmnet:3306
db2106.codfw.wmnet:3306
db2099.codfw.wmnet:3314
db2095.codfw.wmnet:3314
db2090.codfw.wmnet:3306
db2073.codfw.wmnet:3306
db1150.eqiad.wmnet:3314
db1149.eqiad.wmnet:3306
db1148.eqiad.wmnet:3306
db1147.eqiad.wmnet:3306
db1146.eqiad.wmnet:3314
db1145.eqiad.wmnet:3314
db1144.eqiad.wmnet:3314
db1143.eqiad.wmnet:3306
db1142.eqiad.wmnet:3306
db1141.eqiad.wmnet:3306
db1138.eqiad.wmnet:3306
db1125.eqiad.wmnet:3314
db1121.eqiad.wmnet:3306
db1081.eqiad.wmnet:3306
clouddb1019.eqiad.wmnet:3314
clouddb1015.eqiad.wmnet:3314

Is it really needed or can we clean it up?

Related Objects
Search...

StatusSubtypeAssignedTask
Restricted Task
 Resolved MarosteguiT268636 Remove 'kraken' user

Event Timeline

Marostegui created this task.Nov 24 2020, 3:17 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptNov 24 2020, 3:17 PM
Marostegui triaged this task as Medium priority.Nov 24 2020, 3:17 PM
Marostegui added a parent task: Restricted Task.
Marostegui moved this task from Triage to Refine on the DBA board.
Kormat added a comment.Nov 24 2020, 3:23 PM

It looks like this is veery old. The only mentions in the private repo:

commit 5cf2ee5124db368429c6be4902786158cea623d0
Author: root <git@sockpuppet.wikimedia.org>
Date:   Fri May 24 14:04:30 2013 +0000

    Fixing sqoop password variable names

commit 2f3a9809a1d3decba1e2953aab6380fbb00e9cd0
Author: root <git@sockpuppet.wikimedia.org>
Date:   Fri May 24 13:55:03 2013 +0000

    Adding sqoop mysql creds for pre labs db.  (Mainly so I don't forget it!)
jcrespo added a comment.Nov 24 2020, 3:30 PM

I never heard of this user, either.

elukey added a comment.Nov 24 2020, 3:41 PM

Wow this is a very old project that I remember reading while prepping for my interviews for analytics :D

Please clean it up from s4, we don't need it.. I'll also check in the private puppet repo :)

Marostegui closed this task as Resolved.Nov 24 2020, 3:46 PM
Marostegui claimed this task.

Thanks, I have dropped it:

# ./section s4 | while read host port; do echo "$host:$port"; mysql.py -h$host:$port -e "show grants for 'kraken'@'10.64.%';";done
labsdb1012.eqiad.wmnet:3306
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
labsdb1011.eqiad.wmnet:3306
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
labsdb1010.eqiad.wmnet:3306
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
labsdb1009.eqiad.wmnet:3306
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
dbstore1004.eqiad.wmnet:3314
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
db2140.codfw.wmnet:3306
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
db2139.codfw.wmnet:3314
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
db2138.codfw.wmnet:3314
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
db2137.codfw.wmnet:3314
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
db2136.codfw.wmnet:3306
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
db2119.codfw.wmnet:3306
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
db2110.codfw.wmnet:3306
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
db2106.codfw.wmnet:3306
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
db2099.codfw.wmnet:3314
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
db2095.codfw.wmnet:3314
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
db2090.codfw.wmnet:3306
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
db2073.codfw.wmnet:3306
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
db1150.eqiad.wmnet:3314
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
db1149.eqiad.wmnet:3306
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
db1148.eqiad.wmnet:3306
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
db1147.eqiad.wmnet:3306
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
db1146.eqiad.wmnet:3314
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
db1145.eqiad.wmnet:3314
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
db1144.eqiad.wmnet:3314
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
db1143.eqiad.wmnet:3306
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
db1142.eqiad.wmnet:3306
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
db1141.eqiad.wmnet:3306
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
db1138.eqiad.wmnet:3306
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
db1125.eqiad.wmnet:3314
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
db1121.eqiad.wmnet:3306
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
db1081.eqiad.wmnet:3306
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
clouddb1019.eqiad.wmnet:3314
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
clouddb1015.eqiad.wmnet:3314
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'kraken' on host '10.64.%'
Marostegui changed the visibility from "Custom Policy" to "Public (No Login Required)".Nov 24 2020, 3:46 PM
Marostegui changed the edit policy from "Custom Policy" to "All Users".
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL